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[57] ABSTRACT 

A method and apparatus for generating additional inq)licit 
keys from a key [K^]^ without the necessity of generating a 
new Diffie-Helman (DH) certificate or requiring communi- 
cation between nodes to change implicit master keys is 
disclosed. A first data processing device (node I) is coupled 
to a private network which is in turn coupled to the Internet 
A second data processing device (node J) is coupled to the 
same, or to a different network, which is also coupled to the 
Internet, such that node I communicates with node J using 
the Internet protocol Node I is provided with a secret value 
i and a public value. Data packets (referred to as 
"datagrams") are encrypted to enhance network security. 
Each node maintains an internal value of N which is 
inaemented based on time and upon the receipt of a data 
packet from another node. The key [K^]^^ is derived from 
the appropriate quantity of a^-' by using high order key- 
sized bits of the respective quantity. The present invention 
then utQizes the key [K^yl^v^ to encrypt a transient key which 
is referred to as K^. Node I encrypts the IP data in and 
encrypts in [K^l^i- Node I transmits the encrypted IP 
datagram paclttt in the encrypted key to the receiving 
node J. Node I further includes its current internal value of 
N, in the outgoing packet. The present invention also pro- 
vides for the application of one-way functions to the shared 
secret to enhance security. Thus, either node I or node J may 
change the context such that if in the future [K^jjff^ is 
compromised, or is not useable by a cracker to either deaypt 
prior encrypted packets. The present invention discloses 
methods and apparatus for achieving perfect forward secu- 
rity for closed user groups, and for the application of the 
SKIP methodology to datagram multicast protocols. 

40 Claims, 8 Drawing Sheets 
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METHOD AND APPARATUS FOR STEPPING 
PAIR KEYS IN A KEY-MANAGEMENT 
SCHEME 

This Application is a continuation-in-part of U.S. patent 
application Ser. No. 08/258,272, now U.S. Pat. No. 5,588, 
060 entitled "A KEY-MANAGEMENT SCHEME FOR 
DATAGRAM PROTOCOLS", and Ser. No. 08/258344, 
now U.S. Pat. No. 5,416,842 entitled "METHOD AND 
APPARATUS FOR KEY-MANAGEMENT SCHEME FOR 
USE WITH INTERNET PROTOCOLS AT STTE 
FIREWALLS", both filed Jun. 10, 1994, which are incor- 
porated fiilly herein by reference, assigned to the Assignee, 
Sun Microsystems, Inc., and referred to herein as the **parent 
applications". 

BACKGROUND OF THE EWENTION 

1. Field of the Invention: 

The present invention relates to the field of key manage- 
ment sdiemes, and more particularly, the present invention 
relates to a key management scheme for Internet working 
protocols to provide additional security at the network layer. 

2. Art Background: 

The Internet conq)rises a spiderweb of connected net- 
works which criss-cross the globe and permit users to send 
and receive data packets between computers. Although 
many of the computers coupled to the Internet are disposed 
at fixed locations, portable con^)Uter systems may be physi- 
cally moved from one location on a network to anotiier. 
Wireless linlra coupling the computers to the Internet, 
including direct satellite links, also allow users to access the 
Internet from remote areas. As a result of the dramatic 
increase in the use of the Internet throughout the word, 
concerns regarding network security naturally arise. 

A variety of sdiemes have been proposed to Increase 
security on the Internet, and a number of these schemes have 
been adopted. For example, encryption and authentication 
procedures known as Privacy Enhanced Mail (PEM) provide 
for enhanced privacy in electronic mail ("e-mail") services 
over the LatemeL Additionally, schemes for utilizing PEM 
for secure remote user authentication have also been pro- 
posed. (See, for example, copending U.S. patent a pplica tion 
Ser. No. 08/253,802, filed Jun, 3, 1994, entitied **MKrHOD 
AND APPARATUS FOR SECURE REMOTE USER 
AUTHENTICATION IN A PUBLIC NETWORK", 
assigned to the Assignee of this patent application, Sun 
Microsystems, Inc., and hereby incorporated fully by 
reference.) 

However, even if a remote user has been authenticated, 
there still exists the possibility that an intruder (herein 
referred to as a **crackcr") may mount an active attack to 
interject himself in data transfers across the Internet 
Althougih a user may incorporate a scheme for secure remote 
user authentication prior to login, a cracker may sever one 
of the authenticated parties from the Internet connection, and 
receive and transmit substitute data packets to the other 
unwitting party (or potentially to both parties). Once the 
Internet connection is established, data packets are sent over 
the network in tiie dear. For example, a cracker may 
interject himself between, for example, a user "A" in com- 
munication with a user "B" on the Internet, and issue a 
disconnect command to user A, Upon receipt of the discon- 
nect command from the cracker, user A beUeves that user B 
has severed the connection. The cracker may then take over 
the conmiunication established with user B, such that user B 
does not know that user A is not sending him data packets. 
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Thus, a number of security issues exist when sending data 
over the Internet, including a cracker's ability to monitor 
data packets in the clear and to interject himself in the 
conmiunication line such that he may receive and send data 

5 packets to unwitting users. It is, therefore, advantageous to 
put authenticity and privacy features at the network layer on 
the Internet However, the majority of the privacy and 
authentication protocols which have been proposed provide 
session oriented key management schemes. Unfortunately, 
many of the commonly used network layer protocols are 
session-less datagram oriented protocols. 

In the Applicant*s co-pending parent U.S. patent applica- 
tions of which this U.S. patent is a continuation-in-part, a 
simple key management scheme (referred to as "SKIP") was 
disclosed for use in session-less datagram protocols. In the 
SKIP scheme, a first data processing device (node I) is 
coupled to a private network which is in turn coupled to the 
Internet A second data processing device (node J) is coupled 
to the same, or to a different network, which is also coupled 
to the Internet, such that node I communicates to node J 

20 using the Internet protocol (*1P"). Node I is provided with 
a secret value i, and a pubHc value a' mod p. Node J is 
provided with a secret value j, and a public value a' mod p. 
Data packets (referred to as "datagrams'*) are encrypted 
using the teachings of the present invention to enhance 

25 network security, A source node I obtains a Diffie-Helman 
(DH) certificate for node J (either from a local cache, from 
a directory service, or directly from node J), and obtains 
node J's public value ce^* mod p from the DH certificate. 
Node I then computes the value of a'^ mod p, and derives a 

30 key K*' from the value a*' mod p. A transient key is 
generated at random and is used to encrypt the datagram to 
be sent by node I. The key is used for a configurable 
number of bytes, which is the maximum number of bytes the 
node will encrypt using I^. The key is then encrypted 

35 with key K^.. 

Upon receipt of the encrypted datagram by the receiving 
node J, the node J obtains a DH catificate for node I (eitiia- 
from a local cache, from a directory service or directiy from 
node J) and obtains the public value a* mod p. Node J then 

40 confutes the value of a*' mod p and derives the key K.^. 
Node J utilizes the key K^ to decrypt the transient key Kp, 
and using the decrypted transient key I^, node J decrypts the 
datagram packet, thereby resulting in the original data in 
unencrypted form. 

45 One aspect of the SKIP scheme disclosed in my 
co-pending parent application is that K^- stays constant until 
the DH certificate changes. Depending on tiie environment, 
obtaining a new DH certificate may result in system perfor- 
mance degradation. As will be described, the present inven- 

50 tion discloses a method and apparatus for generating <^er . 
implicit keys from Ky, without the necessity of generating a 
new DH certificate or requiring any communication between 
node I and J to change keys. Using the teadiings of the 
present invention, one secret may be used to generate 

55 litCTaUy millions of secret keys by stepping the context, 
where a context is defined by an implicit interchange key. In 
addition, the present invention provides methods and appa- 
ratus for achieving perfect forward secrecy in closed user 
groups, through the application of one-way functions to the 

^ implicit pair-wise secrets for each node. Moreover, the 
present invention discloses an improved application of SKIP 
for datagram multicasts. 

SUMMARY OF THE INVENTION 

65 The present invention provides an improved simple key 
management scheme (SKIP) having particular application to 
datagram protocols, such as the Internet protocol (IP). 



06/16/2004, EAST Version: 1.4.1 



5,668,877 

3 4 

In one embodiment, the present invention discloses a not have a cached and verified DH public key for node I, 

method and apparatus for generating additional implicit keys node J proceeds to obtain the DH certificate for node I and 

firom a key [K^]^ without the necessity of generating a new extracts the DH public value for node L The value of [IC,-lw, 

Diffie-Hdman (DH) certificate or requiring any communi- is then determined and cached for later use. Node J then 

cation between nodes to change keys. A first data processing 5 proceeds to decrypt the encrypted value of ICin the received 

device (node I) is coupled to a private network whidi is in data packet using [Kij]^^^ and decrypts the fr data utilizing 

turn coupled to the Internet. A second data processing device ^* 

(node J) is coupled to the same, or to a different network. The present invention further provides for the application 

which is also coupled to the Internet, such that node I of one-way functions to the shared secret to enhance secu- 

communicates with node J using the Internet protocol. Node jo found that forward security may be obtained 

I is provided with a secret value i and a public value which through the generation of an implicit pair-wise secret having 

in one embodiment takes the form mod p. Data packets ^^e value a^^*' mod p. In the present invention, the value 

(referred to as "datagrams") arc encrypted using the teach- ^ 2, however other integers may also be used, 

ings of the present invention to enhance network security. A '^"^^ ^ ^^"^ f compromised at any point, either 

source node I obtains a DH certificate for node J and obtains 15 ^ ^ ''f^.^.'^y change the context such that tfie 

node J's public value a' mod p from the DH certificate. compromised [i^,] is not useable by a cracto to eitha: 

Node I then computes the value of, in one embodiment a^'^ 

. J J . 1 TTj- 1 1 jvit J ^ addition, the present invention further provides methods 

mod p, and ^ives^^y [K,,]^^ ^^^^^^f "^^^^ and apparatus for achieving perfect forward security for 

or alternauvdy, o^*^^-' mod p, where M=2, 3, . . . and N=a closed user groups. Each ncJde in a closed user group 

1,2...). Each node mamtams an internal value of N which 20 precomputes aU shared secrets (e.g., a(^>'> mod p) for each 

IS mcrementcd based on time and upon the receipt of a data closed group node. Each node then deletes its secret (i, j, . 

packet from another node. In the presently preferred etc.). As the value of N is incremented, each node may 

embodiment, the value N is stored within the Security compute [K,y]^ for any value of N without the need to 

Association ID (SAID) field of an Internet specification of recalculate the shared secret. Upon receipt of a data packet 

the IP Security Protocol (IPSP) defined by the Internet 25 in the context Nj (for a datagram transmitted, for example, 

Engineering Task Force. by node I), a receiving node J computes [K^]^/^ and decrypts 

The key [K^]^ is derived from the ^propriate quantity of data packet using K^. Since it is not necessary to 

cc^^ by using low order key-sized bits of the respective compute the implicit shared secret between the nodes in the 

quantity. The present invention then utilizes the key [K, J^^ closed user group, perfect forward secrecy is achieved since 

to enaypt a transient key which is referred to as K,. The key 30 ^ *=«^acker*s discovery of the value of [K,;,.]^^, and thereby the 

IC, is used for a configurable number of bytes, wkich is the ^^^^ ^ particular N of a^^ ^ mod p, will not assist in 

maximum number of bytes the node will encrypt using K-. aecryptmg packets encrypted m contexts earlier than N^. 

The key K, is then encrypted with the key [¥L,]^. The first present invention further provides an improved appH- 

time a tiaismitting node I communicates with node J, the ^^^f ° f ^ ^KIP methodolo©^ to datagr^on multicast 

nodecomputesthesharedsecreta'^-'modp.ThevalueofN 35 PJ^tocols, Where secure mu^ticas^^^ 

:o ;«;t;oii„ c»f u« o«„,i 1 r-CA'^M/ M is requffcd, a group membership creation primitive estab- 

is imtially set by each node to be equal to 1 (or for Ae ^^^^o ^ ^ minbership list of addresses 

case, N IS initially set to 0), and mcremented based on Ume ^ to tomsmit and receive datagrams to and 

and upd^ed usmg the value of N stored in received pad^ets. ^^^^ ^ of multicasts, the iroup key 

To calculate a'^^ mod p, node I must determine if it has a ^ ^ encryption key, but rather as a group 

cached authenticatedpubhcDH key for node J. If it does n(A 40 interchange key (GIK). K. is therefore used as a key 

have this DH key, it must obtain J*s DH certificate, verify the encrypting key similar to the way in which pair keys [K.]^ 

DH certificate and cache node J's DH public value. If node are used in SKIP for unicast methodologies. Nodes wishing 

I has a cached [K^]//^ key, and a cached authenticated public to encrypt and decrypt datagrams to the multicast address M 

DH key for node J, node I then generates a random key Kp acquire the GIK K^ In the presently preferred embodiment, 

and encrypts this key using [Kij]j^^ Node I then encrypts the 45 the acquisition of group interchange key is accoirqilished by 

IP data in and encrypts in [K^y]//^. Node I then sending an encrypted request to join to the group owner, 

transmits the encrypted IP datagram packet in the encrypted the requesting nodes address is part of the group authorized 

key Kp to the receiving node J. Node I further includes its membership list, the group owner then sends the GDC to the 

current internal value of N, in SAID bytes of the outgoing requesting node. The cuirentiy envisioned application of the 

packet 50 present invention's improved datagram multicast protocol is 

The receiving node J initially sets its internal value of Ny further described with reference to an Internet standard 

as a variable equal to 1. The internal value of Ny is inae- proposed by the inventor of this patent, 

rnented by 1 based on elapsed time as weU as by tiie receipt DESCRIPnON OF THE DRAWINGS 
of a data packet. Upon receipt of the encrypted data packet 

from node I, tiie internal value of Ny is compared to the value 55 ^ illustrates a date processing system incoiparating 

of N^ in the SAID field of the received packet If N.. is greater teachings of the present invention, 

than node J's internal value N,-, node J determines if it has P^G. 2 diagrammatically illustrates one possible network 

a cached and verified public key for node I. If node J does scheme using the teachings of the invention in an Internet 

not have the public key, it obtains a DH certificate for node environment. 

I and verifies and extracts a DH public value for node L 60 HG. 3 illustrates a flow chart of the steps executed in 

Node J then computes the value of [Kylj^^ and decrypts the sending an encrypted data packet from a network node I to 

packet using [K,y] and KL, If the packet is valid, the value of a network node J, in accordance with the teachings of the 

Ny is set equal to N,. If, however, node J determines that tiie present invention. 

value of N, is less than node J's internal value N^, tiie data FIGS. 4(a) and 4(b) are flow charts of tiie steps executed 

packet is considered to be invalid and discarded If N^ is 65 by each node to change the value of die variable N in tiie 

equal to Ny, node J determines if it is a cached and verified calculation of [K^Iat and to decrypt a data packet where 

DH public key for node L As in the prior case, if node J does N,<Ny. 
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FIGS. 5(a) and S{b) are flow charts of the steps executed 
for the receipt of encrypted data packets by node J from node 
I where NpN^ and N,<N^. 

FIG. 6 diagraimnatically illustrates the transmission for- 
mat of an encrypted datagram, 

FIG. 7 is a flow chart of the stqps executed by the present 
invention to achieve perfect forward secrecy for closed user 
groups. 

Notation and Nomenclature 

The detailed descriptions which follow are presented 
largely in terms of symbolic representations of operations of 
data processing devices coupled to a network. These process 
descriptions and representations are the means used by those 
skilled in the data processing arts to most effectively convey 
the substance of their work to others skilled in the art. 

An algorithm is here, and generally, conceived to be a 
self-<;onsistent sequence of steps leading to a desired result. 
These steps are those requiring physical manipulations of 
physical quantiiles. Usually, though not necessarily, these 
quantities may take the form of electrical or magnetic 
signals capable of being stored, transferred, combined, 
compared, displayed and otherwise manipulated. It proves 
convenient at times, principally for masons of common 
usage, to refer to these signals as bits, values, elements, 
symbols, operations, messages, terms, numbers, or the like. 
It should be borne in mind, however, that all of these similar 
terms are to be associated with the appropriate physical 
quantifies and are merely convenient labels applied to these 
quantiiies. 

In the present invention, the operations referred to are 
machine operations. Useful machines for performing the 
operations of the present invention include general purpose 
digital con:q)uters (referred herein as "nodes"), or other 
similar devices. In all cases, the reader is advised to keep in 
mind the distinction between the method operations of 
operating a computer and the method of computation itself. 
Tlie present invention relates to method steps for operating 
a computer, coupled to a series of networks, and processing 
electrical or other physical signals to generate other desired 
physical signals. 

The present invention also relates to apparatus for pec- 
forming these operations. This apparatus may be specially 
constructed for the required purposes or it may conq)rise a 
general purpose computer selectively activated or reconfig- 
ured by a computer program stored in the computer. TTie 
method/process steps presented herein are not inherently 
related to any particular computer or other apparatus. Vari- 
ous general purpose machines may be used with programs in 
accordance with the teachings herein, or it may prove more 
convenient to construct specialized apparatus to perform the 
required method steps. The required structure for a variety of 
these machines will be apparent ftom the description given 
below. 

DETAILED DESOOPTION OF THE 
INVENTION 

In the following description, numerous specific details are 
set forth such as system and network configurations, repre- 
sentative data packets, messages, and devices, etc, to pro- 
vide a thorough understanding of the present invention. 
However, it will be apparent to one skilled in the ait that the 
present invention may be practiced without these specific 
details. In other instances, well known circuits and structures 
are not described in detail in order to not obscure the present 
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invention. Moreover, certain terms such as "knows", 
•Verifies", "examines", "utilizes", **finds", "determines", 
"challenges", "authenticates", etc., are used in this Specifi- 
cation and are considered to be termus of art The use of these 

5 terms, which to a casual reader may be considered personi- 
fications of core^uter or electronic systems, refers to the 
functions of the system as having human-like attributes, for 
simplicity. For exaiiq)le, a reference herein to an electronic 
system as "determining" something is simply a shorthand 

10 method of describing that the electronic system has been 
programmed or othowise modified in accordance with the 
teachings herein. The reader is cautioned not to confuse the 
functions described with everyday human attributes. These 
functions are machine functions in every sense. 

15 

Exemplary Hardware 

FIG. 1 illustrates a data processing system in accordance 
with the teachings of the present invention. Shown is a 
coiiq)Uter 10, which conqxrises three major components. The 

^ first of these is an input/output (UO) circuit 12 which is used 
to communicate information in ^propriately structured 
form to and from other portions of the computer 10. In 
addition, corr^}uter 10 includes a central processing (CPU) 
13 coupled to the I/O circuit 12 and a memory 14. These 

^ elements are those typically found in most genaal purpose 
computers and, in fact, computer 10 is intended to be 
representative of a broad category of data processing 
devices. Also shown is an interface circuit 17 coupled to the 
I/O circuit 12 for coupling the computer 10 to a network, in 

^ accordance with the teachings herein. The interface droiit 
17 may include encrypting and decrypting circuitry incor- 
porating the present invention, or as will be appreciated, the 
present invention may be inq)lemented in software executed 
by computer 10. A raster display monitor 16 is shown 
coupled to the I/O circuit 12 and issued to display images 
generated by CPU 13 in accordance with the present inven- 
tion. Any well known variety of cathode ray mbe (CRT) or 
other type of display may be utilized as display 16. 

Referring now to FIG. 2, a simplified diagram conceptu- 
ally illustrates the Internet 20 coupled to a private network 
22, a second private network 26, and a third private network 
30. The network topology illustrated in FIG. 2 is represen- 
tative of the existing Internet topology, however, it will be 

^5 noted that the present invention provides an improved key 
management scheme \^ch has application for use in net- 
works other than the Internet 

One of the unique aspects of the Internet system is that 
messages and data are transmitted through the use of data- 

50 gram packets. In a datagram-based network, messages are 
sent from a source to a destination in a similar manner to a 
government mail system. For example, a source computer 
may send a datagram packet to a destination computer 
regardless of whether or not the destination computer is 

55 currently on-line and coupled to the network. The Internet 
protocol (IP) is completely session-less, such that IP data- 
gram packets are not associated with one another. 

In this Specification, the present invention will be 
described with reference to comnmnication between a node 

60 I coupled to private network 22, and a node J coupled to the 
private network 30, as shown in FIG. 2. The nodes I and J 
represent computers, such as the computer illustrated In FIG. 
1, coupled to their respective networks. For simplicity and 
ease of understanding, an operation by, for example, "node 

65 r* , shall be understood to mean an operation by the computer 
coupled to network 22. It will also be noted that although 
FIG. 2 represents nodes I and J as intermediate or end user 
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computers^ that the present invention may also be applied to 
firewalls. In such event, nodes I and J would represent 
lirewaU machines coupled between their respective net- 
woris and the Internet 20. For a description of the applica- 
tion of SKIP to site firewalls, the reader is referred to my 5 
co-pending parent application, Ser. No. 08/258,344, filed 
Jun. 10, 1994, entiUed "METHOD AND APPARATUS FOR 
KEY-MANAGEMENT SCHEME FOR USE WITH 
INTERNET PROTOCOLS TO SITE FIREWALLS". 

As described in my co-pending parent application, and 
incorporated herein by reference, one way to obtain authen- 
ticity and privacy at a datagram layer is to use RSA public 
key certificates. Traditionally, in the event node I desires to 
send a datagram to, for example, node J, the node I com- 
municates with node J and authenticates itself using a 
certificate based key management infrastructure. An 
example of a. certificate based infrastructure key manage- 
ment for secure Internet e-mail is the Privacy Enhanced Mail 
(PEM) system (sec the PEM RFC documents filed concur- 
rent with the Application upon which this patent is based, 
and incorporated herein by reference, entitled **Privacy 
Enhancement for Internet Electronic Mail", parts I-IV rfcs 
1421-1424, available on the Internet). 

The certificates used by PEM are RSA public key certifi- 
cates. An RSA public key certificate is one which contains 
an RSA public key. (See, A. Aziz, W. Diffie, **Ptivacy and 
Authentication for Wireless LANs", IEEE Personal 
Communications, February 1994; and also, W. DifBe, M. 
Wiener, P. Oorschot, "Authentication and Authenticated Key 
Exchanges".) There are two primary ways in which RSA 
certificates can be used to provide audienticity and privacy 
for a datagram protocol. The first way is to use out-of-band 
establishment of an authenticated session key, using one of 
several session key establishment protocols. This session 
key can then be used to encrypt IP data traffic. Such a 
scheme has the disadvantage of establishing and maintaining 
a pseudo session state on top of a session-less protocol. The 
IP source must first communicate with the IP destination to 
acquire this session key. In addition, when the session key 
must to be changed to insure security, the IP source and the 
IP destination need to communicate again to effecmate the 
change. Each such communication involves the use of a 
computationally expensive public-key operation. This com- 
munication requirement is particularly ill-suited to a data- 
gram protocol like IP, whidi does not require the receiving 
computer to be in operation to send packets to it, although 
to establish and change negotiated session keys the receiving 
computer must be operational. 

The second way an RSA certificate can be used to provide 
authenticity and privacy in a datagram protocol is to com- 
plete in-band signalling of the packet encryption key, such 
that the packet encryption key is encrypted in the recipient's 
public key. This is the method PEM utilizes to accomplish 
message encryption. Although this avoids the session state 
establishment requirement, and also does not require the two 
parties to conununicate to set up and change packet encryp- 
tion keys, this scheme has the disadvantage of having to 
cany the packet encryption key encrypted in the recipient's 
public key in every packet Since an RSA encrypted key 
would minimally need to be 64 bytes, and can be 128 bytes, 
this scheme incurs the overhead of 64-128 bytes of keying 
information in every packet. In addition, when the packet 
encryption key changes, a public key operation would need 
to be performed to recover the new packet encryption key. 
Thus, both the protocol and conq)Utational overhead of such 
a scheme is high. 

As disclosed in my parent applications, the use of Diffie- 
Hellman (DH) public-key certificates avoids the pseudo 
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session state establishment, and the communications 
requirement between the two communicating computers to 
acquire and change packet encrypting keys (see, W. Diffie, 
M. Hellman, **New Directions in Cryptography", IEEE 
Transactions on Infomarion Theory). Rirthermore, the use 
of a DH public-key certificate does not incur the ovahead of 
carrying 64-128 bytes of keying information in every 
packet, and is better suited to protocols such as IP, since it 
does not require the receiving computer to be operational to 
establish and change packet encrypting keys. 

Referring now to the flow charts illustrated in FIGS. 3 and 
4, the present invention utilizes DH public-key certificates 
for key management, such that each IP source and destina- 
tion is provided with a Di£5e-Hellman public key. This DH 
public-key is distributed in the form of a certificate. The 
certificate can be signed using either an RSA or DSA 
signature algorithm. The certificate is referred to herein as a 
"Diffie-Hellman" (DH) certificate, because the public value 
that is certified is a Di£&e-Hellman public value. 
20 It will be appreciated that the present invention's use of 
DH certificates to compute a shared key is fundamentally 
different than the use of the DH certificate to negotiate a 
session key, for example, as described in the paper by 
Whitfield DifQe, entitied "Authentication and Authenticated 
25 Key Exchanges" (Kluwer Academic Publishers, 1992), 
because the present invention uses a zero-message protocol 
to compute a shared secret. All past uses of DH certificates 
have involved exchanging messages between the two com- 
municating parties. 
30 As will be described, the present invention discloses an 
improved method and apparatus for generating additional 
implicit interchange keys for use with the SKIP scheme 
previously disclosed in die applicant's copending parent 
applications of this continuation-in-part application. For 
35 purposes of this Specification, a "context" is an implicit 
interchange key, where an interchange key is a key which is 
used to encrypt other keys, as opposed to a traffic key. For 
example, in the parent applications K^ was considered the 
interchange key. Accordingly, it is desirable to step the 
40 interchange key creating new additional interchange keys, 
thereby creating further secrets from tiie original implicit 
pair-wise interchange key generated. In accordance with the 
original teachings in the parent applications, upon 
initialization, each IP source or destination computer, for 
4S example node L is provided with a secret value i, and 
computes a public value a' mod p. Similarly, node J is 
provided with a secret value j, and computes a public value 
u! mod p. For purposes of illustration, assume that node I 
wishes to communicate to node J coupled to private network 
so 30 in HG. 2. As previously described in the parent 
applications, botii I and J can acquire a shared secret a'^ mod 
p without having to communicate, so long as the public key 
of each IP node is known to all other IP nodes. The values 
a and p are system parameto's, where p is a prime number. 
55 It will be ^Tpredated by one skilled in the art that local 
caching of DH certificates can eliminate the constant need 
for directory service, thereby minimizing system overhead. 

One improvement of the present invention is to create 
additional shared secrets of a'-' mod p. Utilizmg the SKIP 
60 scheme, the computable shared secret is used as a key 
encrypting key to provide for IP packet based authentication 
and encryption. Thus, a" mod p was defined in the original 
SKIP scheme as a **long term key", and the value K^ was 
derived from this long term k^. The key K^, is used as the 
65 key for a known shared key cryptosystem (SKCS) such as 
D£S or RC2. constitutes an implicit pair-wise share 
secret, since K^ does not need to be sent in every packet or 
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negotiated out of band Simply by examining the source of 
an IP packet, the destination IP node (for example node J) 
may confute the shared secret K^-. 

As disclosed herein, the successive ^plication of a func- 
tion to the value mod p results in the aeation of 
additional implicit pair-wise shared secrets without the 
necessity of communicating the shared secret between nodes 
I and J or obtaining a new DH certificate. 

In this Specification, the value [Kyl^r denotes the Nth 
implicit key, where N is indicated in the received packet, as 
will be described more fully below. AdditionaUy, the quan- 
tity [K^l^may be determined by evaluating the quantity a'^*' 
mod p wha-e N=l, 2, . . . , or alternatively, a^^'^ mod p; 
where N=04,2 . . , Z, and M=2,3,4 ... y. As in the original 
SKIP scheme which is the subject of my parent applications, 
the key [K,-,]^^ is derived from the appropriate quantity of 
cc^^ mod p (or a^*^^^ mod p) by using low order key size 
bits of the respective quantity. The way in which a'^ is 
computed is by a simple extriwpolation of the DH scheme. 
Each node con^)utes (a^y^=a ^ and in turn raise it to its 
secret (a^y=a^'-'. In this Specification, it will be appreciated 
that the present invention inay be realized usingeidier o'^'^ 
mod p, or alternatively, of The use of a<^^^ mod p 
provides additional security, and as wiU be described, for- 
ward secrecy. N is a number that is stored on a pairwise basis 
in each node. The value of N may be different for different 
nodes, J, K, . . . , etc. 

Since a'*"-^ mod p is minimally at least 512 bytes (and for 
greater security may be 1024 bytes or higher), sufficient 
bytes may be derived for use as used as a key for the 
SKCS. Typically, SKCS key sizes are in the range of 40-172 
bits. 

As provided by ttie SKIP scheme, the present invention 
then utilizes the key [K^J^v to encrypt a 'transient key", 
which is referred to as K^. The key is generated at 
random to encrypt a configurable number of data packets. 
After the configurable number of data packets have been 
sent, a new is generated at randono. The transient key Kj, 
is used to encrypt an IP data packet, or a coUection of IP data 
packets. The encryption using limits the amount of data 
in the long-term key which a potential cracker can access. 
Since it is desirable to retain the long-term key for a 
relatively long period of time (one or two years), the actual 
IP data traffic is not encrypted in key [K^^lj^ In the preferred 
embodiment of the invention, only the transient keys of the 
long-term key are encrypted using [Kijlsi and the transient 
keys are used to encrypt IP data traffic. Thus, the amount of 
data encrypted in the long-term key [K^]f^ is limited to a 
relatively small amount over a long period of time. 

For purposes of explanation, assume that [K^lyvr^ derived 
from a^*-' mod p. As previously noted, the generalized 
one-way function of a^**^^^ mod p may also be used. The 
first time the IP source, such as node I, which has been 
provided with the seaet value i, communicates with the IP 
node J which has been provided with a secret value j, the 
node I computes the shared seaet oc'^'^ mod p. As will be 
described, the value of N is an internal value which is 
initially set by each node to be equal to 1, and incremented 
based on time and updated using the value of N stored in 
received packets. In the prescntiy preferred embodiment of 
the invention, the value N is disposed within a field identi- 
fied as the Security Association ID ("SAID") in a Specifi- 
cation of IP Security Protocol (IPSP) defined by the Internet 
Engineering Task Force. The SAID field includes user 
definable bytes which the present invention utilizes to trans- 
mit the value of N. However, it will be appreciated that a 
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variety of mechanisms may be utilized to transmit the value 
of N, and that the use of the SAID field is only one 
mechanism of many. 
Referring now to FIG. 3, the sequence of stqjs utQized by 

5 the present invention to encrypt and transmit a packet is 
illustrated. As shown, a transmitting node I iiu^y sets an 
internal value of Npto 1 (or NpO, for tiie a^*^^'^ case), and 
determines whether or not node I has a previously cached 
[K^]^^ key. The first time an IP source, such as node I, which 
has been provided with the secret value i, communicates 
with the IP node J which has been provided with the secret 
value j, the node I computes the shared secret a'^*'-' mod p. 
To calculate a'^'*' mod p, node I must determine if it has a 
cached authenticated public DH key for node J. If node I 
does not have this DH key, it must obtain node J's DH 
certificate, verify the DH certificate and cache node J's DH 
public value (see FIG. 3). The value of [Ky]^^ is then 
computed and cached 
As illustrated in FIG. 3, if node I has a cached [K^]^^ key, 

2Q and a cached authenticated public DH key for node J, these 
steps are not repeated. Node I then generates a random key 
Kp and encrypts this key using [K^l^r^. Node I then encrypts 
the IP packet data in K^, and encrypts in [Kyl^^r. Node I 
then transnuts the encrypted IP datagram packet and the 

25 encrypted key K^ to the receiving node J. Node I fiirther 
includes its current internal value of N^- in the SAID field of 
the outgoing packet. The outgoing datagram packet sent by 
the source node I takes the form illustrated in FIG. 6. 
Referring now to FIGS. 4(a), 4(b) and 5, the steps for 

30 receiving and decrypting the data packet sent by node I to 
node J wiU be described. As shown in FEG. 4(a), the 
receiving node J initially sets its internal value of Ny as an 
variable which is changed internally, or upon the receipt of 
a valid encrypted package. For exaiiq)le, as shown in FIG. 

35 4(a) after a predetermined time the internal value of Ny in 
node J is incremented by Nyf 1. The incrementing of N is 
done in the same manner for each node as that described 
herein with reference to node J. However, for sin^lidty and 
ease of understanding, only the case of node J is described 

40 in this Specification. 

Upon the receipt of an encrypted data packet from node 
I the internal value of the vari^le Ny at node J is .compared 
to the value of N, in the SAID field of the received packet 
If N,. is greater than node J*s internal value Ny, node J 

45 determines if it has a cached and verified public key for node 
I. If node J does not have the public key, it obtains a DH 
certificate for node I and verifies and extracts a DH public 
value for node L Node J then computes the value of [Ky]^^ 
and decrypts the packet (P) using [K^]^^ and Kp. Node J tiien 

50 determines if the packet P is a valid encrypted packet in the 
context Nj. This determination may be accomplished in 
using a number of mechanisms including checksum 
verifications, examining header formats and the like. If the 
packet is not validly encrypted in context N^ , then the data 

55 packet is considered invalid and discarded. If the data packet 
(P) is determined to be a valid encrypted packet in the 
context Nj then the internal value of Ny for node J is set equal 
to Nf. Normal data packet processing is then done by node 
J. 

60 Continuing to refer now to FIGS. 5(a) and 5(fr), if node J 
determines that the value of N; in the SAID field is less than 
node J's internal value Ny, the data packet is considered to 
be invalid and discarded. Since in accordance with the 
teachings with the present invention the value of N, and Ny 

65 may only increase, the case where a received data packet 
provides a value of N, which is less than Ny denotes an error 
condition. 
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If N, is equal to Ny, node J determines if it has a cached 
and voiiied DH public key for node L If node J does not 
have a cached and verified DH public key for node I, node 
J proceeds to obtain the DH certificate for node verifies the 
certificate, and extracts the DH public value for node I. The 5 
value of lK^]st is then detennined and cached for later use. 
As illustrated in FIG. 3, node J then proceeds to decrypt the 
encrypted value of IC in the received data packet using 
[Kij]j^, and decrypts the IP data utilizing K^. Node J then 
completes normal packet processing with the decrypted data lO 
packet. Normal packet processing may include the delivery 
to an appropriate local transport entity, or other outbound 
interface. 

Referring briefly to FIG. 6, the Message Indicator (MI) is 
a field that is used to preserve the statelessness of the 15 
protocol of the present invention. If a single key is used to 
encrypt multiple packets, (which is highly desirable since 
changing the key on a per packet basis constitutes significant 
computational overhead) then the packets need to be 
decryptable regardless of lost or out-of-order packets. The 20 
MI field serves this purpose. The actual content of the MI 
field is dependent on the choice of SKCS used for I^ and its 
operating mode. For example, if Kp refers to a block cipher 
(e.g. DBS) operating in Qpher-Block-Chaining (CBC) 
mode, then the MI for the first packet encrypted in key Kp 25 
is the Initialization Vector (IV). For subsequent packets, the 
MI is the last blocksize-bits of ciphertext of the last (in 
transmit order) packet For DBS or RC2 this would be 64 
bits. For stream C4)hers like RC4, the MI is simply the count 
of bytes that have already been encrypted in key Kp (and 
may also be 64 bits). 

If the source node I decides to change the packet encryp- 
tion key I^. the receiving node J can discover this fact 
without having to perform a public-key operation. The 
receiving node J uses the cached value [K^]^ to decrypt the 
encrypted packet key K^, and this is a shared-key crypto- 
system operation. Thus, wi&out requiring communication 
between transmitting (I) and receiving (J) ends, and without 
necessitating the use of a public-key operation, the packet 
encrypting key can be changed by the transmitting side. ^ 

Since DH certificates are used, the nodes I and J have no 
public-lrey signature algorithm. It will be appreciated that 
the lack of a public-key signature algorithm is not a major 
issue, since signing each packet using a public-key crypto- 
system is too cumbersome in any case. In accordance with 
the present invention, the integrity of the packets is deter- 
mined in a pair-wise fashion using a SKCS. 

Application of One- Way Functions 

50 

In any security system, it is generally assumed that the 
keys are not compromised. For sake of example, assume that 
a cracker successfully obtains I^. The cracker can then also 
learn of the encryption of under K^j because this infor- 
mation is part of the packet header. The cracker may then 55 
send forged trafSc to either nodes I or J pretending to be the 
other node. (This scenario is not considered likely as this 
involves breaking a cryptosystem which is not required to be 
weak.) In addition, if a cracker learns a node's secret (e.g., 
i), this allows the aacker to decrypt all traffic that was sent go 
encrypted by using a*-' mod p as the interchange key. 

By deleting i (each nodes private DH key) and succes- 
sively applying one-way functions of the type a^*'^^*' (where 
N=0, 1, 2. 3, . . . and M=2, 3, . . . ) perfect forward seaecy 
may be achieved in closed user groups. In a closed user 65 
group, all the nodes can pre-compute their respective pair- 
wise shared secrets a'-' mod p, for all possible i and j. The 
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nodes then delete their respective DH seaets i, j, . . . , etc. 
Each time they decide to step the context (defined as an 
implicit shared key) they can compute the N'* level inter- 
change key from any level interchange key without requir- 
ing the long-term DH secrets i, j, . . . , etc. Assume I is 
computing the N"* level interchange key from the S level 
seaet, which is defined as a^*^'^. 

To compute the Nth level secret, node I can compute the 
following, starting widi the S level secret: 

It will be appreciated that since node I knows both S, M, and 
N, it can raise the S level secret to the power M^"^ without 
needing to know either i or any prior secret. Once it has 
computed the N level secret, it can delete the S level secret, 
since the context numbers only step forward and never back. 
If a node should be compromised at some point in time, 
when it is at context level N, then this compromise does not 
reveal the implicit shared secrets at levels less than N. This 
is because the long term seaet no longer exists on the node, 
and seaets at levels less than N cannot be computed because 
exponentiation modulo p is a one-way fiinction, and break- 
ing it is computationally intensive. 

Even assuming that a cracker discovers [K^Iat^, since 
nodes I and J have stepped the context thereby changing the 
implicit interchange key, the information obtained by the 
cracker would be of no value. It has been found that perfect 
forward secrecy may be obtained through die generation of 
an inq)licit pair-wise secret having the value of a^*'^*^ mod 
p. In the present embodiment, and for purposes of 
description, M=2 thereby providing a one-way fiinction 
Q^<2^)u jQQ^ p pqj. example, incrementing N results in the 
following representative values of a^^^-' mod p: 

Value N 




We consider a^^'-' a one-way function because comput- 
ing Mth roots modulo p, is computationally impractical. 

As the result of the repeated squaring of the value a^^^-^ 
mod p, once N is determined by the receiving node (node J) 
the quantity a^^^'^ mod p provides perfect forward secrecy. 
In this Specification, perfect forward secrecy means that if 
[Ky]^ is compromised at any point, then earlier traffic 
encrypted M contexts [K^jj^^, M=l, 2, . . . , N-1, is not 
con:q)romised. This is because [Ky]A,» for M=l, 2, . . . M-1, 
is not revealed by knowing [Kij]j^, since N>M. 

Perfect Forward Secrecy For Qosed User Giroups 

As described above, both node I and node J must maintain 
the values of i and j to generate the implicit pair-wise secret 
It will be appreciated that to calculate the value of a^^^-^ 
mod p it is not necessary for node I to retain the value of i. 
However, the deletion of i requires that all of the pair keys 
for the members of a closed user group be pre-computed 
prior to the deletion. The concept of perfect forward secrecy 
is driven by the notion that if a user group's equipment is 
compromised such that the keys are discovered, the data 
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which has been encrypted previously should not be com- 
promised by the discovery. An enemy agent could detemune 
any of the previously used values of once he has 
obtained the value of i. Thus, the method of the present 
invention provides that all members of the closed user group 5 
pre-compute all a*' values and where [K^y]^ represent values 
for each of the nodes L J, K, etc. within the closed user • 
group. 

For example, with reference to FIG. 7, once node J 
calculates all of the long-term pair keys for each of the 
members of the closed user group, node J may delete its 
seaet value j. 

Similarly, all members of the closed user group delete 
their long-term secrets i, j, ... As the value of N is 
incremented, each node may confute [K^]jv from any value 
[Kij], where S<N for any value of N. Thus, in accordance 
wii the teachings of the present invention, assunae that node 
I has an N level secret ^ which is defined as a^^^-^ mod p. 
In order to compute the Nth level secrety, node I calculates 
(a^^^*' mod p. If node I is compromised when at a level N, 
then all traffic encrypted using (N-1) and lower level keys 
are still protected, because confuting Mth roots mod p is 
computationally difficult 

Referring once again to FIG. 7, the sequence of steps ^ 
executed by node J to achieve perfect forward secrecy in a 
closed user group is illustrated. As shown, node J precom- 
putes the values of the shared secrets (e.g., a^^^-'modp for 
node I) in the closed user group. Node J then deletes its 
seaet j. As previously described with reference to FIGS. 3, 
4 and 5, node J increments its internal value Ny after a 
predefined time out, or upon the receipt of a data packet 
When node J increments the value of Ny, it also computes the 
value of Ny+l** secret^ from the N'^ secret The N/ secret 
is then deleted. 35 

Upon the receipt of a data packet (P) in the context N, 
(e.g., a data packet from node I), node J confutes [K^Ia^, and 
decrypts the data packet P. Node J then determines whether 
the data packet was a valid encrypted packet in context Nj 
using one of a number of mechanisms previously described 40 
with reference to FIGS. 4 and 5. If the packet P is a valid 
packet in context N^, node J sets its internal N=Ni. 

As will be appreciated for closed user groups where each 
node may precompute all secret values and then discard their 
secrets, pofect forward secrecy may be obtained using one 45 
way functions. In the event a new node is added to the closed 
group, each of the nodes must have a new set of DH 
certificates/secrets assigned to them. However, for long term 
dosed groups, the p'esent invention's application of one 
way functions and the deletion of each node's DH secret 50 
value significantly enhances network security. 

It will also be noted that the key management scheme 
described herein may also be used to provide an integrity- 
only check for later packets. In this case, the key Kp may be 
used directly by either node I or node J to encrypt a message 55 
digest of the packet header or packet header and data. 
Alternatively, JL, may be used to compute a Message 
Authentication Code (MAC) either over the entire packet, or 
over a message digest computed over the packet 
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]ix^>roved Application of SKIP to Datagram 
Multicast Protocols 

As disclosed in any co-pending parent 25)plication, and 
incoqporatcd herein by reference, the method of the present 
invention may be used in conjunction with datagram mul- 
ticasting protocols such as IP (or IPng) multicast This 
application requires key-management awareness in the 
establishment and joining process of multicast groups. 
Furthermore, in order to distribute multicast keying material, 
the notion of a group owner should exist When secure 
multicasting to a multicast address M is required, a group 
menibership creation primitive will establish the group key 

and the membership list of addresses that are allowed to 
transmit and receive encrypted multicast datagrams to and 
from group address M. This action will be taken by the 
group owner. 

The group key is not used as a packet encryption key, 
but rather as the Group Interchange Key (GIK). Namely, K^ 
is used as a key-encrypting-key, similar to way the pair keys 
[Kij]j^ are used in SKIP for unicast IP. 

Nodes wishing to transmit/receive encrypted datagrams to 
multicast address M acquire the GIK K^. In the present 
invention, this is accon^>lished by sending an encrypted/ 
authenticated request-to-join primitive to the group owner. If 
the requesting node's address is part of the group's autho- 
rized membership list, the group owner sends the GIK K^ 
algorithm identifier, associated lifetime information and 
key-change policy in an encrypted packet, using the pair- 
wise secure protocol previously described in this Specifica- 
tion. 

The packet formats for the GIK request^esponse is given 
below. This describes the payload portion of either a TCP or 
UDP packet, which has been enhanced using SKIP unicast 
procedures. If using UDP, multiple requests may be sent, in 
case of packet losses of earlier requests/response messages. 
The request is sent to TCPAJDPport #XXXX corresponding 
to the group owner's unicast IP address. 

0 12 3 

01234567 8 90 123456789012345678901 



Version = 1 I Reserved 



IP Multicast Address M 



The first field specifies the version of this protocol, which 
is 1. Following this field is the acmal IP multicast address for 
which the GIK is being requested The request packet that is 
sent must have the Tninimfll IPSP enhancement of source- 
origin authentication, and may optionally be encrypted 
and/or have playback protection by use of the sequence 
number field. The group owner's response is an encrypted 
packet containing the GIK K^. The response is sent to 
TCP/UDP port #XXXX and is addressed to the requestor's 
unicast IP address. This packet format Is as follows. As 
before, it defines the data-portion of a TCP or UDP packet 
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0 12 3 
01234567890123456789012345678901 
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 

1 Version =1 IK^alg. id 1 Reserved I 
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 
I IP Multicast Address M ! 
+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_ +_+_+_ +-+ 
I Expiry time (kw 32-bits) I 
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 
! Expiiy time (high 32-bits) { 
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 

I Reconuceaded Key Change Interval (in sees) 

-+-+-+-+-+-+ 

I Recommended Key Change Interval (in bytes) 

+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+• 
{ Kg ... (length dependent on Kf algid) 
+ _ + + _ + _ + _ + + _ + + + + + + 



The 64-bit expiry time Specifies when the multicast key is In additioa, since all the packet encryption keys are 

considered to have expired. This is in terms of seconds since* randomly generated, and hence different, there is no problem 

Jan. 1, 1994, expressed in GMT. The recommended key- 20 "sing stream-ciphers with multicast This is because each 

change interval is what every source of encrypted traffic to source of encrypted traffic when using a stream dpher would 

the multicast group uses to determine the key-change policy. use a different key-stream and thus there is no key-stream 

There are two ways currently envisioned to specify a key- reuse problem. If all members of the multicast group used 

change policy. The first is in terms of elapsed time since last the same packet encryption key, then certain stream ciphers 

key-change. Another is in terms of the amount of data 25 could not be used with multicast IP. 

encrypted in a given packet encryption key. It is contem- An implementation of this improved protocol will use the 

plated that each source will use whichever of these methods destination IP multicast address to look-up the GDC K^. 

which determines the more frequent key-change policy. How the identity of the group owner is established and 

whether this is in terms of amount of trafSc encrypted in a communicated to the participating nodes is left to the 

given key, or in terms of elapsed time (in seconds) since the 30 application layer. However, it will be appreciated that this 

last key change. should be done in a secure fashion, otherwise the underlying 

Transmitting nodes to group address M will randomly key-management facility may be defeated, 

generate packet encryption keys Kp, and encrypt these keys An advantage of the method of the present invention is 

using K^. The packet structure is similar to the structure used that only the keying information is distributed in a pair-wise 

for encrypted unicast SKIP packets, except that the packet 3S fashion. The actual encrypted data packet Is sent using the 

keys are not encrypted in the pair-wise keys K^^, but standard multicast delivery mechanisms, thereby allowing 

instead are encrypted using the GDC K^. An example thesamenetworkbandwidthefficiency that is expected of a 

encrypted multicast packet is shown below. network layer multicast protocol when operating over sub- 

0 12 3 
01234567890123456789012345678901 
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 

1 Clear IPHeadcr IP protocol = IPSP . I 
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+■ 
IVer, I1»S0X)!0»I SAID 

I Reserved. t Kf,alg I reserved ! 
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 
I K, encrypted in K, . . . (typically 8-16 bytes) 

+ _ + _ + + _ + _ + + _ + 

I Message Indicator (e.g, IV) . . . (typically 8 bytes) 

+-+-+-+-+-+-+-+-+-+-+-+ 
I Begin Protected IPSP Paylovi . . . 
+-+-+-+-+-+-+-+-+-+-+-+ 



The destination IP address will be used by the receiver to 55 
determine whether to use unicast of multicast key- 
processing procedures on a received IP packet In case the 
destination address is an IP multicast address, it will use the 
group IK to decrypt the packet encryption key K^. 

There are two distinct advantages of this scheme. Every 
member of the multicast group can diange packet encryp- 
tion keys as often as required (in line with the policy set by 
the group owner), without involving key-setup comiminica- 
tions overhead involving every member of the group. This 
can be extremely frequent, even once every few seconds, 
even with very large multicast groups, because there is no 65 
extra conununications overhead for changing packet encryp- 
tion keys. 



networks which also support multicasting (for example, 
Ethernet FDDL etc). TMs sdieme is considered to scale 
well, even for a large number of nodes, because key-change 
requires no extra communications overhead. 

Management of DH Certificates 

Since the nodes* public DH values are communicated in 
the form of certificates, the same type of multi-tier certifi- 
cation structure that is being deployed for PEM, and also by 
the European PASSWORD. There may be a Top Level 
Certifying Authority (TLCA) which may constitute the same 
the Internet Policy Registration Authority (IPRA), Policy 
Certifying Authorities (PCAs) at the second tier and the 
organizational Certificate Authorities (CAs) below that 
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In addition to the identity certificates, which are part of 
FHM, additional authorization certificates are needed to 
properly track the ownershy) of IP addresses. Since it is 
desirable to directly use IP addresses in the DH certificates,, 
name subordination principles alone cannot be used to 
determine if a particular CA has the authority to bind a 
particular IP address to a DH public key. Howeva-, the 
present invention may use the X.509/PEM certificate format, 
since the subject Distinguished Name (DN) in die certificate 
can be the ASCII decimal representation of an IP (or IPng) 
address. 

Since the nodes only have DH public keys, which have no 
signature capability, the nodes themselves are unable to 
issue DH certificates. The node certificates are issued by 
organizational CAs which have jurisdiction over the range 
of IP addresses that are being certified. The PCAs will have 
to perform suitable checks (in line with the policy of tiiat 
PCA), to confirm that the organization which has jurisdic- 
tion over a range of addresses is issued a certificate giving 
it the authority to certify the DH values of individual nodes 
with those addresses. This authority may be delegated in the 
form of a authorization certificate signed by the PCA. For 
the purposes of authorization, the CA's Distinguished Name 
(DN) will be bound to the range of IP addresses over which 
it has jurisdiction. The CA has either an RSA or DSA 
certificate from the PCA. The CA which has authority over 
a range of IP addresses can delegate authority over part of 
the range to a subordinate CA, by signing another authori- 
zation certificate using its own private key. The organiza- 
tional CA so authorized is identified by the range of 
addresses that it can issue certificates for. The range of IP 
addresses are identified in the certificate in the form of a IP 
address prefix length list. 

I claim: 

1. A method for a first data processing device (node I) to 
send data to a second data processing device (node J), 
comprising the steps of: 

providing a secret value i and a first public value to said 
node I; 

providing a context variable N^- to said node I; 
providing a secret value j, and a second public value to 

said node J; 
said node I performing the steps of: 
obtaining a certificate for node J and determining said 
second public value for node J from said certificate 
for node J; 

computing a key {BC^}jv^ from a shared seaet derived 
from said second public value, said seaet value i, 
and said context variable N^; 

utilizing said key {K^}st to encrypt a randomly gen- 
erated transient key K^, and encrypting a data packet 
to be transmitted to node J using said key I^; 
said node I sending said data packet encrypted using said 

key to said node J; 
said node I notifying said node J of the current value of 

N,. 

2. The method as defined by claim 1, further comprising 
the steps of: 

providing a context variable Ny to said node J; 
said node J performing the steps of: 
receiving said encrypted data packet from node I; 
obtaining a certificate for said node I and determining 
said first public value for node I from said certificate 
for node I; 

comparing said context variable Ny to said context 
variable N,; 
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if N,>Ny, computing said key {^}^^ from a shared 
seaet derived from said first public value, said secret 
value j, and said context variable N^; and 

if N^Ny and said encrypted packet is valid, setting said 
5 context variable Ny to equal N,. 

3. The method as defined by daim 2, further including the 
steps by node J of: 

utilizing said key {K^}a^^ to decrypt said transient key K^, 
and 

iQ decrypting said encrypted data packet using said transient 
key Kp, whereby node J decrypts data received from 
and previously encrypted by node L 

4. The method as defined by claim 3 further including the 
steps by node J of: 

15 computing a key [Kyjff^ from a shared seaet derived firom 
said first public value, 

said seaet value j, and said context variable Ny; and if 

NpNy, 

utilizing said key {Kij}j^^ to decrypt said transient key 
20 I^. and 

decrypting said encrypted data packet using said tran- 
sient key I^; whereby node J decrypts data received 
from and previously encrypted by node- 1 

5. The method as defined by clahn 3 ftirtha including the 
25 steps by node J of discarding said encrypted data packet and 

signaling an error condition if Nj<Ny. 

6. The method as defined by claim 3, wherein said nodes 
I and J inaement said Nj and Ny, respectively after a 
predetermined time period. 

30 7. The method as defined by claim 6, wherein said data 
packet includes a context field including said context vari- 
able N,. 

8. The method as defined by daim 6, wherein said first 
public value is ot^ mod p. 
35 9. The method as defined by claim 8, wherein said second 
public value is oe' mod p. 

10. The method as defined by daim 9, whaein N, and Ny 
are initially set equal to 1. 

11. Tht m^od as defined by claim 6, wherein said first 
40 public value is ot<"^'^ mod p for some integer M. 

12. The method as defined by daim 11, wherein said 
second public value is mod p for some intega M. 

13. The method as defined by claim 12, wherein M=2 and 
N, and Ny are initially set equal to 0. 

45 14. The method as defined by daim 6, whaein said key 
{Ky}jy is used as a key for a shared key cryptosystem 
(SKCS). 

15. The method as defined by claim 14, wherein said 
SKCS is DES. 

50 16. The method as defined by claim 14, wherein said 

SKCS is RC2. 
17. The method as defined by daim 14, whaein said data 

packet includes a source address, a destination address and 

an SKCS identifia field. 
55 18. The method as defined by daim 17, whaein said data 

packet fintha includes a message indicator field. 

19. The method as defined by claim 6, whaein a and p are 
system parameters, and where p is a prime numba. 

20. An apparatus for encrypting data for transmission 
60 from a first data processing device (node I) to a second data 

processing device (node J), comprising: 

node I including a first storage device configured to store 
a seaet value i, a first public value, and an intanal 
context variable N^; 
66 node J induding a second storage device configured to 
store a secret value j, a second public value, and an 
internal context variable Ny; 
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node I including an encrypting device coniigured to 
encrypt a data packet to be transmitted to node J, said 
data packet being encrypted using a first certificate for 
node J to determine said second public value for node 

J; 

said encrypting device further deriving a key {K^}^ 
from the value of a shared secret derived from saia 
second public value, said secret value i, and said 
context variable N^, and 

said encrypting device encrypting a randomly gener- 
ated transient key Kp using {Ky}^^, and encrypting 
said data packet using said transient key K^; 
node I further including an interface circuit configured to 

transmit said encrypted data packet to said node J and 

to notify said node J of the value of N,-. 

21. The apparatus as defined by claim 20, wherein said 
node J further includes: 

a receiver configured to receive said encrypted data 

packet from node I; 
a decrypting device coupled to said receiver configured to 

decrypt said data packet from node I. 

22. The apparatus as defined by claim 21, wherein said 
decrypting device obtains a second certificate for said node 
L determines said first public value for node L and confutes 
a shared value secret derived from said first public value and 
said secret value j. 

23. The apparatus as defined by claim 22, wherein said 
decrypting device compares said internal context variable Ny 
with said context variable N^, 

24. The apparatus as defined by claim 23, wherein 

if N,>Ny said node J computes said key {K^}^ firom a 
shared seaet derived from said first public value, said 
seaet value j, and said context variable N,-; 

said encrypting device utilizing said key {K,y}^^ to 
decrypt said transient key B^, and decrypting said 
received data packet using said transient key K^, and 
setting equal to N, if said data packet is valid. 

25. The apparatus as defined by claim 24, wherein 
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said node J computes said key {K^}^, from a shared secret 
derived from said first public value, said secret value j, 
and said context variable N,-, and 

if NpN^ said encrypting device utilizes said key {K^j^^^ to 
5 decrypt said transient key and decrypts said 
received data packet using said transient key K^. 

26. The apparatus as defined by daim 25« wherein if 
N,<Ny said node J discards said data packet. 

27. The q>paratus as defined by daim 26, wherein said 
nodes I and J increment said N,- and N^, respectivdy after a 

^ predetermined time period. 

28. The apparatus as defined by daim 27, whaein said 
data packet includes a context field storing said value of 
to notify said node J of said value of N,. 

29. The apparatus as defined by claim 28 wherein said first 
15 public value is cc^' mod p. 

30. The qjparatus as defined by daim 29, wherdn said 
second public value is a'^^ mod p. 

31. The apparatus as defined by claim 30, wherein and 
are initially set equal to 1. 

20 32. The apparatus asdefined by daim 31, wherein said 
first public viue is a^**^^' mod p. 

33. The q^paratus as d^ed by daim 32, wherdn said 
second public value is a^**^^ mod p. 

34. The apparatus as defined by claim 33, wherein M=2. 
25 35. The ^paratus as defined by claim 34, wherein said 

key {Kij}f^ is used as a key for a shared key ciyptosystem 
(SKCS) and is derived from a^*^^'-'. 

36. The apparatus as defined by daim 35, wherein said 
data packet indudes a source address, a destination address 
and an SKCS identifier field. 

37. The apparatus as defined by claim 36, wherein said 
data packet further indudes a message indicator field. 

38. The apparatus as defined by daim 37, wherdn a and 
p are system parameters, and where p is a prime number. 

39. The apparatus as defined by daim 38, wherein said 
35 SKCS is DBS. 

40. The apparatus as defined by claim 38, where said 
SKCS is RCZ 

***** 



06/16/2004, EAST version: 1.4.1 



